I have at home a PC running Proxmox with a couple of VMs. Currently the PC has a 2.5G NIC (Onboard) and I'm planning to install a Mellanox NIC with dual SFP+ ports in the following days, because I want to migrate my LAN to 10G fiber.
I'm running my firewall **Sense in an small box without SFP+ ports, so I want to move my firewall to Proxmox, and these are my questions:
1) I would like to passtrhough both Mellanox SFP+ ports directly to ***Sense VM and avoid using soft bridging.
2) (and this is the part that I have no idea) I want my Firewall VM to provide connectivity to the Host and to all VMs. I understand that if the Firewall VM got rebooted, I will lose connectivity to Proxmox and to everywhere, but it's the same it's happening now. If I reboot my little box, I can't get access to Proxmox, so I really don't mind it. Worse case scenario, I think I could set an static IP to the Onboard NIC and get access to the GUI through that port, right? But I think that would be my second step.
Does somebody could tell me first, if it's possible...and second, how to do it? I know how to pci-passthrough the Mellanox NIC to the Firewall VM, but I have no idea how to provide connectivity to the Host and the rest of the VMs, via the Firewall VM. Once I passthrough the NIC, I blieve I will be not able to create a Bridge to the already passedtrough LAN port of the Firewall VM because the Host (proxmox) will not see it anymore, right?
Thanks in advance!!!
I'm running my firewall **Sense in an small box without SFP+ ports, so I want to move my firewall to Proxmox, and these are my questions:
1) I would like to passtrhough both Mellanox SFP+ ports directly to ***Sense VM and avoid using soft bridging.
2) (and this is the part that I have no idea) I want my Firewall VM to provide connectivity to the Host and to all VMs. I understand that if the Firewall VM got rebooted, I will lose connectivity to Proxmox and to everywhere, but it's the same it's happening now. If I reboot my little box, I can't get access to Proxmox, so I really don't mind it. Worse case scenario, I think I could set an static IP to the Onboard NIC and get access to the GUI through that port, right? But I think that would be my second step.
Does somebody could tell me first, if it's possible...and second, how to do it? I know how to pci-passthrough the Mellanox NIC to the Firewall VM, but I have no idea how to provide connectivity to the Host and the rest of the VMs, via the Firewall VM. Once I passthrough the NIC, I blieve I will be not able to create a Bridge to the already passedtrough LAN port of the Firewall VM because the Host (proxmox) will not see it anymore, right?
Thanks in advance!!!
Last edited: